Authentication support SASL_PLAINTEXT by KKNithin · Pull Request #68 · IBM/openkommander

KKNithin · 2025-06-20T10:20:21Z

New docker file for secure kafka dev
Modified code to use environment variables
Added kafka auth configuration for user along with input required
Currently we can use multiple brokers for one cluster with one user

Down merge

vladoatanasov · 2025-06-20T14:12:17Z

 	github.com/IBM/sarama v1.45.2
 	github.com/gorilla/mux v1.8.1
 	github.com/jedib0t/go-pretty/v6 v6.6.7
+	github.com/joho/godotenv v1.5.1


you can load the variables from the env file via Makefile, see here for example. We don't really have a use case for writing the env variables to an env file, so you can remove this library.

vladoatanasov · 2025-06-20T14:17:22Z

 	s.adminClient = nil
 	s.isAuthenticated = false
 	s.version = constants.SaramaKafkaVersion
+	s.isSecureKafka = false


I think if you just do s = session{} it will be better. This way you don't have to worry about clearing all the properties from the session object when you want to log out

vladoatanasov · 2025-06-20T14:20:29Z

-
-	sessionData := SessionData{Brokers: currentSession.brokers, IsAuthenticated: currentSession.isAuthenticated, Version: currentSession.version.String()}
-	err = json.NewEncoder(file).Encode(sessionData)
+	envMap := make(map[string]string)


I'm a bit confused, did we move the config file to the env file? I am not a big fan of introducing a third party library for a trivial task like writing to a file, so if we decide this is the direction we want to take, we can easily implement this functionality ourselves.

Or we can have a hybrid solution where the broker metadata is stored in a flat file on disk and only the credentials are preserved in the env variable.

@DuarteMartinho what do you think?

vladoatanasov · 2025-06-20T14:22:07Z

-	broker = strings.TrimSpace(broker)
-	if broker == "" {
-		broker = constants.KafkaBroker
+	currentSession.isSecureKafka = readUserClosedInput("Is your kafka configured with SASL_PLAINTEXT security? (y/n): ")


the isSecureKafka flag should be changed to isSaslPlaintext, because there are many ways to secure a kafka cluster

KKNithin and others added 2 commits June 18, 2025 08:38

Merge pull request #67 from IBM/main

094d1d7

Down merge

CLI - support authentication SASL_PLAINTEXT

81b3840

KKNithin requested review from DuarteMartinho and vladoatanasov June 20, 2025 10:20

KKNithin self-assigned this Jun 20, 2025

KKNithin added the feature New feature support label Jun 20, 2025

KKNithin linked an issue Jun 20, 2025 that may be closed by this pull request

Authentication Support (SASL_PLAINTEXT) #64

Open

1 task

CLI - support authentication SASL_PLAINTEXT

9e071e2

KKNithin removed request for DuarteMartinho and vladoatanasov June 20, 2025 11:12

KKNithin marked this pull request as draft June 20, 2025 11:12

KKNithin marked this pull request as ready for review June 20, 2025 11:24

KKNithin requested a review from vladoatanasov June 20, 2025 11:24

vladoatanasov reviewed Jun 20, 2025

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Authentication support SASL_PLAINTEXT#68

Authentication support SASL_PLAINTEXT#68
KKNithin wants to merge 3 commits into
mainfrom
64-authentication-support

KKNithin commented Jun 20, 2025

Uh oh!

vladoatanasov Jun 20, 2025

Uh oh!

vladoatanasov Jun 20, 2025

Uh oh!

vladoatanasov Jun 20, 2025

Uh oh!

vladoatanasov Jun 20, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

KKNithin commented Jun 20, 2025

Uh oh!

vladoatanasov Jun 20, 2025

Choose a reason for hiding this comment

Uh oh!

vladoatanasov Jun 20, 2025

Choose a reason for hiding this comment

Uh oh!

vladoatanasov Jun 20, 2025

Choose a reason for hiding this comment

Uh oh!

vladoatanasov Jun 20, 2025

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants